Static task
static1
Behavioral task
behavioral1
Sample
5b73ba724eea6a5c05658201c530175172ed2c05f42cf96d192b35ab24d765fc.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
5b73ba724eea6a5c05658201c530175172ed2c05f42cf96d192b35ab24d765fc.exe
Resource
win10v2004-20220414-en
General
-
Target
5b73ba724eea6a5c05658201c530175172ed2c05f42cf96d192b35ab24d765fc
-
Size
655KB
-
MD5
e4294bdcd5c3176ec605bc8162ded436
-
SHA1
46b92cfb321e686f6e6b93430820f2860f792da3
-
SHA256
5b73ba724eea6a5c05658201c530175172ed2c05f42cf96d192b35ab24d765fc
-
SHA512
e10297aa56fcf104015a2d410cf53c5f513669cf95cd56eea96fa4bcc4e8aae03b7be9b4a9c3bface2c53b8ad950cabd3755cb5cdb722c9c7bc60a2998ed0e52
-
SSDEEP
12288:WVbVm4oebGRDiK0E0VlY0VuemEZH/GAcCMSv0xotRc4xgmOOQoS9fPMx:Kjo+GRoE0PLM7mfRMSv0xSTamOsx
Malware Config
Signatures
-
Processes:
resource yara_rule sample upx
Files
-
5b73ba724eea6a5c05658201c530175172ed2c05f42cf96d192b35ab24d765fc.exe windows x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
UPX0 Size: - Virtual size: 21.8MB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UPX1 Size: 572KB - Virtual size: 576KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 81KB - Virtual size: 84KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE